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AUTHENTICATED TIME DEVICE fiable or woridng veision of ao original data block is stored 

rpn« RcppDCMrc tt. dcf A-nrn * write-once read-many (WORM) record con- 

UKUs>J>-KfchbKbNct lu KbLAl W taming the ongmal data, a stripped version of the original 

APPLICATIONS data, or a hash signature of the original daU together with the 
This application is a divisional application of Ser. No. 5 present dale. Modifications to the working data blocks are 

08/198,041. filed Feb. 17, 1994, which is a divisional ^ the modifications can be identified and 

application of Ser. No. 08/020^54, filed Feb. 22. 1993, for 'fTlf ,^ [^I^^'t *u «"T^P«°dtng original 

A PERSONAL COMPUTER DIARY, now U.S. Pat. No. ^^?^\ authenticity of «,e ongmal daU with its 

5,^7.579 which is a c^ntinuaj^^^^^^^^^^^ StMlS'n^r^^^^ 

patent apphcalioD Ser. No. 07/637,675 filed Jan. 7, 1991, for - ^ , . . uaw uiuw^. 

DOCUMENTS now U.S. Pat. No. 5.189,700 which in turn date is before the date of the previously stored diary entry 

Hon'^rNT°07^^^^^^ 15 '° ' '^'^ i^^^'^^i*^" ^ summarized in a 

ARCHIVAL, 5>bCURE DIGITAL MEMORY SYSTEM. entnes includes monitoring the input of diary entries to 

now abandoned; these applications 07/637.675 and 07/375, identify entry of selected text entries or aUases having 

502 are hereby mcorporaled herem m their entirety by coaespondinglistsof one or more previously stored specific 

reference. identifying terms, displaying the one or more of stored terms 
TFPHMTr AT RIPT H ^° corresponding lo the entered selected text entry to enable the 

r.k,niNn^/\L rinLU ^-^^^ ^ identify a correct term for the alias, and placing the 

The present invention relates to archived record keeping identified term in the diary entry, 

systems, such as a diary, for computers. In a fourth aspect, the invention is summarized in a 

BACKGROUND ART computer diary wherein the entry of diary entries for cor- 

^ responding diary dates is momtored for the input relational 

For hundreds of years artists, writers, politicians, and dale entries, and the diary includes formulas for computing 

private persons have kept dairies. The diaries have generally absolute dales corresponding lo the identified selected rcla- 

been hand-written in a bound notebook on consecutive tional date entries so that the computed absolute dates can be 

pages on which the date is either pre-recorded or is entered placed in the diary entry. 

by the diarist as the entries are made. ^ It is an object of this invention to supply a computer diary 

This traditional method of keeping a diary has several system which will not only have the distinctive and useful 

useful features for the diarist and for subsequent readers. features of a traditional diary, but also have many of the 

The diarist cannot easily go back and alter what he has useful features which are attainable only through the aid of 

written. TTius the diary is more likely a truer record of what modem computers. 

the diarist actually thought at the time. The diary is "time Another object of the invention is a diary which is to be 

stamped." The diarist may ink out or tear out pages, but it is kept generally proof against a casual attack by a typical user 

clear to future readers that this has been done; the existence and can be implemented using software. Such a system need 

of an original record is apparent along with its mutilation to not necessarily be secure against a determined attack by a 
indicate the intent of the mutilator lo destroy a particular ^ computer system professional or by a dedicated "diary 

entry. tampering" program written by such a professional. 

Only a proportionally small amount of text can be inserted A further object of the invention is a computer diary with 

at a later date, and this can possibly be detected by changes word processing, text time-stamping and authentication, 

in ink or slight changes in handwriting, or by the fact that the secure archiving, and selective access to different portions, 

additions have been written in the margin. To the degree that or "compartments", of the diary. 

these changes can be detected the diary is Umperproof. One feature of the present invention is the possibility for 

Any reader of the diary can be sure by the handwriting of the diarist to designate segments of text with beginning and 

the identity of the person who wrote the diary; that is, the ending codes signifying different compartments of the text 

diary can be verified to be authentic. The diary may be wherein a piece of text may belong lo several different 
locked away so that it is private. 50 compartments, each compartment can have its own 

Attempts have been made lo provide a computer diary. password, and examination of the diary can be selectively 

Many such diaries are business oriented, designed lo serve restricted to users with knowledge of ihe appropriate set of 

as reminders and not as permanent records. passwords for the compartments of interest lo them. 

The Tandy corporation has marketed a software product Advantages of ihe invention include that the diarist can 
named "My Personal Diary" which allows the user to type 55 control access to the diary, that the diarist, even though he 

into the dated image of a page of a diary Although the ^ owner of the system, cannot alter, change the date of, 

software controls access to the diary pages by use of °^ ^^^^ which is lime-stamped, authenticated, and 

passwords, it is possible for anyone with access to use the already stored. 

software to turn to any date in this diary, past, present, or Another feature of the invention is the provision of the 
future, and lo delete and enter data at will. This is very unlike 60 capability to "tear-out" a limited amount of data per day by 

a real personal diary in that there is no way lo determine if putting text into a tear-out compartment with a password 

an entry for any dale was written at any lime close to that which cannot be extracted from the computer diary by 

date or was written or changed months or years later. anyone, including the diarist. The diarist may, however, 

CT i\A\A A D V ni: iKTwcivmr^M choose to keep a record of the tear-oul password outside the 

SUMMARY OF INVENTION computer diary if he so desires. 

In a first aspect, the present invention is summarized in a in a further aspect of the invention ihe diarist can enter a 

computer system for archiving data blocks wherein a modi- limited amount of annotation data to previous dates, and if 
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desired by the diarist, such additions can be seen on display FIG. 22 is a flow diagram of an aulhcnticalion procedure 

to be clearly distinct from data truly entered on that date by used in the computer diary of FIG. 1, 

placing the annotation data in its own compartment with its piG. 23 is a flow diagram of an exit procedure used in the 

own display defaults; the system ensures that the diarist is computer diary of FIG 1 

never able use the annotation capabUity to falsify the initial 5 flG. 24 is a block diagram of a computer system with 

dm to any person in possession of aU the required pass- t^^^ elements which can. alternatively, be useTto 

_ - perform some of the functions of the software embodiment 

In a still further feature, the diary program ensures that of RGS. 1-23 with greatly enhanced security, 

data is never time-stamped with a date different from that of • ui • j- e j 

. K. . "•^^•^"^ """^ FIG. 25 IS a block diagram of a second computer system 

the current clock, nor with a time earher than the most recent u ^ i . t_. i. • / vi o/on^m 

. , . ^ " it^^ui ^jjj hardware elements which can, alternatively, be used to 

previous time a record was stored m the diary. ^ p .u a cJu r*, TT^ 

r VI vv. Mxoijf. perform some of the functions of the software embodiment 

BRIEF DESCRIPTION OF DRAWINGS °^ still greater enhanced security. 

FIG. 1 is a general block diagram of major procedures DESCRIPTION OF THE PREFERRED 

included in one embodiment of a computer diary in accor- ^5 EMBODIMENTS 

dance with the invention. a, • tti^ * * j- • 

_ - ^ . ^ - . . . , ^ ^ . As shown m FIG. 1, a computer diary m accordance with 

no. 2 IS a flow diagram of imtiM procedures during the invention includes a word processing core 102 along 

startup of the computer diary of FIG. 1. ^^h an archive function 104 by means of which a user can 

FIG, 3 is a general diagram of object code used in the lime stamp and store a diary entry. The word processing 

computer diary of FIG. 1. function 102 can only edit or modify an archived diary entry 

FIG, 4 is a general diagram of contents of a diary file by marking archived diary text or by inserting marked text 

produced and stored by the computer diary of FIG. 1, or other data so that the original archived diary entry can be 

FIG; 5 is a flow diagram of a clock checking procedure reconstructed. Authentication by function 106 is by com- 

used in the initial procedures of FIG. 2. 25 reconstructed text with a write-once read-many 

FIG. 6 is a flow diagram of a setup procedure of the (WORM) version of the original diary entry or by compar- 

computer diary of FIG. 1. encrypted hash signature of the reconstructed text and 

FIG, 7 is a view of a computer display screen produced in f."^°f* date with a WORM h^h signature of the original 

the setup procedure of FIG. 6. ^™ stamped entry. Preferably the program includes encryp- 

crr^ o • c . J* . ^ , ' in *^o° and decryption 112 with storage input/output 114 

HG.Sisaviewofacomputer display screenprod^^^ 30 ^ ^^^P ^ of d ary entriel 

a mam diary entiy and editmg procedure of FIG. 1. Ld variou^ file parameters, iTuser can sive an ^^^^^^ 

no, 9 is a table of built-in relative date phrases with diary entry with save function 116, without time stamping 

corresponding reference dates and references to formulas for and archiving, for later recall and completion, but such 

computing absolute dates from the relative date phrases for incomplete diary entry is not accorded a time stamp, 

use m the procedure of FIG. 17. a- u • -.^ 

trrr- iA- * ui r ^ , * . . The diary program begms With thc imUalization module 

HG. 10 IS a table of user created relative date phrases with 120 after which thc user selects a file in function 122 The 

corresponding references to formulas for computing abso- first time user of the diary selects a new file name which 

lute dates from the relative date phrases similar to FIG, 9 but results in iheprograsL-aLjiiU^^ file setup 

which can be created during the setup procedure of FIG, 6. tunctioa,^6 .TTfile setup 126, the u^ntere several 

FIG. 11 is a flow chart of one possible formula for optional file parameters including a master password. The 

computing absolute dates from relative date phrases referred user can also designate user compartments or text markers 

to in the tables of FIGS. 9 and 10. with associated passwords for permitting others limited 

FIG. 12 is a table of built-in generic terms or alias words access to the diary file, 

used in the computer diary program of HG. 1, 45 When a stored file is selected, the program branches at 

FIG. 13 is a table of user generated generic terms or alias 124 to a function 130 where several file parameters previ- 

words used in the computer program of FIG. 1. ously created in setup 126, including the master password 

FIG. 14 is an example of an unique alias identifier table ^"V compartment passwords are input from the file 

containing lists of specific terms which can be selected to input/output 114. If the user correctly enters a master 

specifically identify aliases in the tables of FIGS. 12 and 13. 50 password at 130, then the program proceeds to the word 

HG. 15 is a general block diagram of some diary entry Processing and user interface 102 with frill read/write access 

and editing functions of the computer diary of FIG 1 *° ^° granted at 132, The master frinction 

HG 16 is a flow diagram of computer procedures to determines the existence of any previously saved but 

control selection of appropriate permitted procedures in the ^^^1 diary entry and inputs any such entry for 

diagram of FIG 15 display by the word processor user interface 102. In the 

vin IT c- « fl^». J* r I *• J . u absence of an uncompleted diary entry, the user interface is 

HG. 17 IS a flow diagram of relative date phrase morn- ^ ^ ^ 

tonng and genenc phrase monitormg procedures in the i^,, r -1 . . . : ^ . 

computer diary of FIG. 1 ^^"^^ password at 130, the 

cir^ ie o« r p r . c user is queried to enter any user compartment passwords. 

FIG. 18 is a flow diagram of a first portion of an r-«„^^t^«.„. « . . 

a^K.wo/o..,,^ «™ ^ eX .J- cT^i^ 1 Correct entry of one or more user compartment passwords 

archive/save procedure of the computer diary of FIG. 1, r^c.iic tK/««„.* n- * a a 1 

n^tn a J- ^ , - . results in the granting of limited read-only access at 134. The 

FIG 19 ,s a flow diagram of a second portion of the limited user is only permitted to input via storage input/ 

archive/save procedure of the computer diary of FIG, 1. output 114 those compartments (text previously marked by 

HG. 20 is a flow diagram of a text stnppmg procedure the master diarist) associated with correctly entered pass- 
used in the archive and restore procedure of FIG. 18, es words. Also the limited user is permitted to search and 

FIG. 21 is a flow diagram of a search procedure used in reUieve 136, print 138, and to import and export 140 from 

the computer diary of FIG, 1. and to an external text or data file. Other diary and word 
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processing functions such as archive 104, storage output number with the checksum number 196 stored in the file. If 

through input/output 114. save 116. setup 126. and other text these checksum numbers are equal, the program branches to 

editing and modification functions are not permitted to the step 242 where a checksum flag is set tnie (T); otherwise the 

hnoited user. checksum flag is set false (F) in step 244 indicating that the 

Failure to enter any correct password in procedure 142 5 stored file has been corrupted by use of some other program 

results m access denied 142 and return to master password a warning is issued if the checksum flag is F becau^ the 

^ ^^^^ program will not permit further archiving to this 

TTic program mcludes monitoring procedures 144 and 146 archive file. In this case the diarist may choose to access a 

for relative date phras^ such as today, tomorrow, yesterday, backup copy of the archive file in hopes that it wiU pass the 
last Sunday, etc., and for abas words such as pronouns like 30 checksum test 
he, she, we, they, or user identified non-specific names or 

aliases such as first names like Bill, Susan, etc. When entry ^ requested in step 248 to enter a master 

of a relative date phrase or an alias is detected, the program password which is compared to the master password 214 

suggests insertion of a specific term, such as the precise date, ^J^^, ^* match, then the 

or selection of a term from a table of terms such as full opportunity to enter a manufacturer's 

names of the possible aliases. Tables of relative date phrases. password in step 250. The manufacturer's password is 

alias words, date formulas and specific terms, can be edited revealed to the user when the user calls the manufacturer and 

and created in procedures 148 and 150. Alternatively, the ^ properly identified (for example, by giving the maiden 

diarist can elect not to insert the absolute date or the specific mother as written by the program 

term. purchaser on the user licensee registration card). Thus 

A user with master access options after electing exit ^° ^^^^"^ registered user forget the master password, full 

function 152 is offered opti ons to archive or save a diary ^ obtained by caUmg the manufacturer. Master 

entry if it was not previoii^y archived or saved. granted m step 252 when cither step 248 or 250 arc 

In the initialize procedure 120 as illustrated in more detail 
in FIG. 2, the program is first loaded in step 160 and then 25 P^^^ limited access to selected data or 
sensitive program elements in the program are decrypted in marked text in the file by giving a limited viewer the 
step 162. FIG. 3 shows the structure of the object code in compartment password of the corresponding data or marked 
which, immediately after control is passed to the loaded the limited viewer fails to enter either the master 
program at 164, control proceeds to decryption code 166 or the manufacmrer's password, the limited viewer can enter 
which decrypts sensitive data 168 which for example 30 * conopartment password or passwords in step 254. If the 
includes a secret, private (RSA) key, a data encryption entered password or- passwords match one or more com- 
(DES) key, and a manufacturer's password and places the payment passwords recorded in section 216 of the file, then 
decrypted data in operating condition with the rest of the ^ ^*^P limited access is granted by setting the master 
object code. The elements 168 are encrypted with a con- password flag to F and a compartment read flag or flags to 
ventional data encryption standard (DES) by the program 35 ^ compartments having the correctly entered pass- 
manufacturer who includes the decryption code with its key passwords. Failure to enter any correct password 
in the program code 166. The purpose of the encryption of ^^^^^^ in the step 254 being false and returning to step 248. 
program elements 168 is to make it more difficult for When either full or limited access has been granted by 
someone to falsify authentication or to alter the archive file either step 252 or step 256, the program performs the clock 
by decrypting, altering, and re-encrypting with another 40 check routine 258 which, as shown in RG. 5, first checks the 
program. The program then jumps at 170 to the main part clock circuit for failures in step 270. If a conventional 
172 of the program where in step 122, FIGS. 1 and 2, a file computer clock circuit is used, loss of battery power or other 
is selected. clock malfunction will normally indicate a failure, and if a 

The file structure, shown in FIG. 4. includes a check sum secure clock is employed, such clock will normally include 

196 which can be produced by conventional summing, 45 ^^^^ checking functions to insure that the clock is 

cyclic redundancy check, cryptographic secure hash proce- operating properly and has not been tampered. If the clock 

dures or the like; a check sum flag 198; a clock flag 200; the diagnostic check test in step 270 is true, then the clock time 

date 204 of the most recent archive; the quantity 206 of ^ compared in step 272 with the last archive time 204 

today's tear-out data together with today's date 208; the recorded in the file of FIG. 4. This step checks for changing 

tear-out password 210; tear-out compartment display data 50 clock time; for example the clock circuit on most 

212 such as whether an tear-out indicator with the number computers can be set to any previous time by the computer 

of words in the tear-out section or compartment is displayed; ^^"P Procedure to attempt to falsify the date of a diary entry, 

the master password 214; user compartment names. When the clock time is greater than the recorded last archive 

passwords, and display data 216; set or default parameters *^"™e ^^^^ ^^^^^ flag is set to T in step 274. If either step 

218 which determine the display of built-in compartments or 55 ^'^^ ^^^P ^72 are false then the clock flag is set to F in step 

marked text such as cross-outs, inserts, imphed dates, Referring back to the procedure of FIG. 2, the setting 

implied alias, etc.; user alias tables 220; user date tables 222; ^}^^ to F in procedure 258 results in the program 

diary entry sections 224 for each archived diary entry branching at step 280 to step 282 where the user is warned 

including reference or WORM data 226 and working or °° further archiving to the file is permitted because of 

read/write data 228 with archive flag 229; an index file 230 60 failure or incorrect dale. 

of all the working data including all text words (except for In step 284. the program reads the set or default param- 
defined trash words like "a", "the", "and", "or", etc.), eters 218 for the file of FIG. 4 and sets the computer display 
implied dales, implied ahas terms, and compartment or text in accordance with the read parameters. The program then 
marking codes; and an index file 232 of the diary entry proceeds to the user interface of the word processing pro- 
sections 224 with their archive date of entry. §5 gram 102. 

Referring back to FIG. 2, the program in step 240 recal- The setup procedure 126 which is called when a new file 

culates the checksum of the file and compares this checksum is selected during program startup or can be called from the 
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user interface is shown in FIG. 6. In step 290, the user is beginning and end of a text segment to mark that text 
given the opportunity to set various system and compart- segment as comprising a compartment; for example in FIG. 
menl parameters. As illustrated in the display screen shown 8 the boundary code for the default compartment **|0|" is 
in FIG. 7 and used for setting the parameters, there are a placed at the beginning of the text before "Last" and after 
variety of "compartments" listed in the second column 292 5 "church." to define a segment of the text from "Last" 
including "CROSS-OUr\ "INSERTION". "INSERTION_ through "church." as belonging to the "DEFAULT" com- 
DATE", "ALIAS", "IMPUED DATE". "TEAR-OUT", partment. It is noted that compartments can be nested that 
"DEFAULT", "PATENT', "FINANCES", "MOTHER". is, a compartment can defined for all or a portion of the text 
"LINDA", and "THE_K1DS". The listed "MASTER" and contained within another compartment. 
"MANUFACTURER" are not compartments but are jq Referring back to FIG. 7, the fourth cohimn 298 is set by 
included because of their password functions. The first nine the user to indicate whether the compartment is to be 
listed compartments including "CROSS-OUT", displayed except that the tear-out compartment is normally 
"INSERTION", "INSERTION_DATE", "ALIAS". not available for being displayed as indicated by the word 
"IMPLIED DATE", "TEAR-OUT*. and "DEFAULT* are "none". The tear-out compartment can only be di^layed 
system compartments while the last five listed compartments 15 under limited access granted by steps 254 and 256 of FIG 
"PATENT". "FINANCES", "MOTHER". "LINDA", and 2 after entry of the correct password for the tear-out com- 
"THE_KIDS" are examples of user created compartments. partment. When the text display for a defined compartment 
User compartment names can be changed, added, and is set to "ON" in cohimn 298, then the text within that 
deleted in the setup procedure, but modification of the listed compartment is displayed in the word processing screen of 
system compartment names is not permitted. 20 ^ corresponding compartment boundary 

In the third column 294, passwords for the various com- codes, and when set to "OFF*, then neither the text nor 
partments are listed, except that the manufacturer's pass- boundary markers are displayed in the word processing 
word is never available to the user in setup and the tear-out screen even if the required passwords have been entered, 
password is only available during the setup of a new file or The diarist can select the color of the text displayed within 
until changed from a default (a default tearout password 25 in sl compartment, where a color computer monitor is 
such as "PASS" is recognized by the software for being employed, as shown in column 300 of FIG. 7, Priority of the 
displayed and changed but any other tear-out password can compartments is set by the diarist in column 302. The color 
not be displayed or changed). During the setup of a new file actually used, if text is in more than one compartment, is in 
the entry of a "MASTER" password is required. The manu- accordance with the compartment with the highest priority, 
facturer's password can be invalidated by depressing the 30 given in column six 302. If the two nested compartments 
"alt" and the "i" keys simultaneously while the cursor rests have equal priorities, the color of the compartment closest to 
in the manufacturer's password row and column in FIG, 7. the top of the list is used. However, the tear-out comparUnent 
This causes the manufacturer's password to be replaced by . always has the highest. The compartments above the tear-out 
the DES encryption of a user-input value using the secret compartment in FIG. 7 have neither independent color nor 
DES key. and the entry in the password column for MANU- 35 priority, as indicated by the dashes, since they are always 
FACTURER to change from "valid" to "not valid." The within another compartment, and thus arc given the same 
program provides no capability to replace the new entry in color and priority as the compartment of the text within 
the manufacturer's password location with another v^ue, which they are placed. 

nor to change the flag from "not valid" to "valid." These The last column 304 in FIG. 7 enables the user to set a 
procedures make it impossible for the diarist or the manu- 40 missing text indicator in the event that the text display for 
facturer to know the new value in the manufacturer's that compartment is "OFF". For example, the missing text 
password location by themselves; although it is still possible indicator for the TEAR-OUT compartment is "ON" in RG. 
that in collaboration they could do so if the diarist retains a 7 and in FIG. 8, text in the tear-out compartment is indicated 
record of his input. The passwords for the other listed system at 310 by "ITTSj". The indicator "T' is the boundary code 
compartments "CROSS-OUT", "INSERTION". 45 indicator, see column 296 in FIG. 7, for the tear-out 
*'INSERT10N__DATE". "ALIAS", "IMPLIED DATE", and compartment, and the number 73 indicates that 73 words are 
"DEFAULT' can be changed from default words while entry in the tear-out compartment. Only for text missing because 
of passwords for user created compartments "PATENT', it has been tom out is the amount of text (73 words in this 
"FINANCES". "MOTHER", "LINDA", and "THE_KIDS" case) indicated. A missing text indicator 312 shows that 
are required when the user creates the compartment. 50 patent compartment (code |lj) contents are missing. 

In the first column 296 are listed the compartment bound- However, there is no indication of how much text is missing, 
ary codes by which the text segments or compartments are After the compartment parameters have been set and 
marked. The program employs the ASCII coding scheme for saved by the step 290 in the setup procedure of FIG. 6, the 
eight-bit bytes ranging from decimal 32 to decimal 127, and program proceeds to the edit/create date and alias table 
the boundary codes are selected from the remaining codes 55 functions in step 320. A built-in date word phrase table 322 
from decimal 0 to 31 and from decimal 128 to 255. Codes is shown in FIG. 9; this table is built into the object code and 
within these latter two ranges and which are not reserved for can not be edited by the user. The built-in date phrase table 
compartment boundary markers can be used for print or 322 contains common relative date terms illustrated in 
display formatting or for displaying various foreign and column 324 such as "yesterday", "last night", "tomorrow", 
other characters and symbols in accordance with one or 60 "today", "this morning". "Thanksgiving". "Christmas", etc! 
more of the conventional symbol sets employed in comput- together with a possible reference date in column 326 and a 
ers and printers. The boundary codes for the system com- formula index number in column 328. The formula pointed 
partments are fixed by the program and the program assigns to by each formula index number 328 calculates an absolute 
boundary codes to user compartments as they are created. In date, for example "25 DEC 1992", for the corresponding 
the display, the boundary codes are displayed as reverse 65 relative date phrase 324 "last Christmas" using the present 
image characters, or characters with selected background clock date and the reference date 326 when required. For 
and foreground colors. The boundary codes are placed at the example the formula for "last Christmas" as shown in FIG. 
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11 first determines in step 332 if the present month and interest has been previously archived. All text in a diary 
day-of-month is greater than the reference date for the entry which has not been previously archived is non- 
current year, and if so, combines the present year with the arctdved text. Text previously inserted (placed in an inser- 
reference date in step 334, otherwise the previous year is tion compartment) in a previously archived diary entry is 
combined with the reference date in step 336. Formulas for 5 also non-archived text; only the original archived text is 
other relative date phrases can be easily composed by a designated as archived text. If step 378 is true, the program 
skilled programmer. branches to step 380 to perform the corresponding archived 

A user's date word phrase table 222, stored in the file of fimction in column 368 of FIG. 15; otherwise the program 
FIG. 4, is shown in FIG. 10 and contains date phrases, branches to step 382 to perform the corresponding non- 
reference dates and formula numbers entered by the user in archived function in column 366 of FIG. 15. 
step 320 of FIG. 6. Typically this user's date phrase table The word processing functions illustrated in FIG. 15 
contains birthdays and anniversaries of the diarist, relatives include, beginning at the top row of the table, text display 
and friends and other important dates. The user's date phrase 384, cursor movement 386, text entry 386, file import 390, 
table of FIG. 10 is used in the same manner as the built-in scrolling text 392, deletion 394, printing 396, blocking text 
date phrase table of FIG. 9. 35 functions 398, and exporting to file 400. It is noted that the 

A built -in alias word table 340 is shown in FIG. 12, a user ^sted word processing functions are only exemplary, and 
alias word tabic 342 is shown in FIG. 13 and a unique alias ^^^^ many other word processing functions could be 
identifier table 344 is shown in FIG. 14. The alias table 340 included and/or one or more of the listed functions could be 
is built into the object code while the tables 342 and 344 are excluded without affecting the useability of the diary pro- 
created or modified by the user in step 320 of FIG. 6 and gram. 

stored in the user alias table section 220 of the file of FIG. Text display under limited access is limited to those 
4. The built-in alias word table 340 contains a list of compartments for which the user has entered a coaect 
commonly used pronouns, such as **he". "she", "it", etc. and password. Preferably, when one or more diary entries 224, 
other common terms such as "mother", "home", etc. The FIG. 4, are read from the storage file under limited access 
user table 342 of alias words typically contains first names ^ and placed in a working memory buffer, the program deletes 
of relatives and friends of the diarist. The unique alias from the buffer all text and data that is not contained in a 
identifier table 344 contains each of the alias words of tables compartment to which access is granted. Additionally each 
340 and 342 together with respective lists of specific names diary entry 224 includes both reference data 226 and work- 
or terms identified by each of the alias words. ing data 228; the reference data is not used in any limited 
In the bottom line of the screen 290 are listed toggles 314, access function and can be deleted from the buffer or not 
315 and 316 which can be pointed to and used to quickly inputted from the storage file when only limited access has 
change the display screen if the master password is T, For been granted. When master access has been granted, work- 
example, pointing and clicking on text display toggle 314 ing data or text 228 is displayed according to the display 
alternates the display of compartments between all displayed parameters set in the setup function of FIG. 7; the reference 
and the settings of column 298. The missing text toggle data 226 is never displayed except insofar as the working 
cycles through all on, all off and the settings of column 304. data includes reference data or text within displayed com- 
Similariy the colors toggle 316 cycles through all on, all off partments, 

and the settings of column 300. The cursor movement functions 386 and the scrolling text 
After modification or creation of the tables of FIGS. 10, ^ functions 392 are generally the same for all displayed text. 

13 and 14 in step 320 of FIG. 6, the program proceeds to step Cursor movement and scrolling under either limited access 

348 where other parameters of the program are edited. For or master access is only performed in displayed text or data, 

example, the user can identify a particular display card such Printing and exporting functions 396 and 400 differ between 

as Hercules, VGA, etc. and can identify a particular printer limited access and master access in that under limited access 
to be used by the program. ^5 only that text in compartments for which access has been 

The word processor 102 of FIG. 1 includes a mmiber of granted can be printed or exported whereas under master 

functions as illustrated in table 360 of FIG. 15 which can be access text in any displayed compartment can be printed or 

called by the pointing and clicking by means of a mouse on exported. Printing and exporting of blocked text in function 

one of the user interface buttons shown in FIG. 8, pressing ^ similarly limited to displayed text or data, 
a cursor movement key, pressing a selected function key, or 50 Any function which involves modification of the working 

simultaneously pressing a Ctrl or alt key with a selected data, such as text entry 388, import 390, deletion 394, and 

function key. The functions listed in table 360 are divided some block functions 398 like block deletion, copying, 

into columns under limited access functions 362 and master moving or text marking is not permitted under limited 

access functions 362, and the master access functions are access. 

further divided into columns under non-archived text 366 55 Data modification functions differ between archived text 

and archived text 368. As shown in FIG. 16, the calling of and non-archived text. When a diary entry is archived, the 

a word processing function proceeds to step 372 where it is corresponding reference data 226, RG. 4, is produced and 

determined if the master password flag, set in step 252 or stored, and this reference data cannot be modified or 

256 of FIG. 2, IS true. If false, the program in step 374 changed by the diary program; editing reference data or any 

determmes if the called function is one of the functions other data by a conventional file editing program will most 

permitted under in the limited access column 362 of FIG. 15, likely render the file or diary entry invalid and unusable in 

and if so proceeds to perform that limited access function in the present diary program. However, working data 228 can 

step 376; if the called function is not permitted under limited be modified or changed in the computer diary program with 

access the program ignores the function call and returns to the provision that if the corresponding diary entry has been 
the user interface. ^5 previously archived, the modifications and changes are 

When step 372 of FIG. 16 is true, the program goes to in made in a manner that the original archived text or data can 

step 378 where it is determined whether the current text of be recreated from the working data. Thus under the archived 
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text column 368, text entries 388 and file imports 390 are button at the top of the screen in FIG, 8 or by pressing an 

placed in insertion compartments (see the text segments appropriately assigned function key or simultaneous com- 

bracketed by jlj . . . |Ij in FIG. 8), Under the non-archived text bination of shift, CTRL or ALT and function key. Any text 

column 366, text entries or imported files arc not marked in not othenvise placed in a user defined compartment is placed 

insertion segments or compartments. Deletions 394 under 5 by the program in the default compartment, 

column 368 of original archived text are made by placing the During text entry or cursor movement, the word processor 

deleted text in a cross-out compartment (see text segments jj, functions 144 and 146 of FIG. 1 monitors words at and 

bracketed by |X| . . . |X| in FIG. 8) while deletions to near the cursor and suggests absolute dates for relative date 

non-archived text are made m the usual manner of deleting ^nd correct unique identifiers for aliases. A proce- 

such text from the workmg word processor buffer. Any dure called by text entry or cursor movement for performing 

msertions mto msertion compartments that have been made functions is illustrated in FIG. 17. In step 410 the 

m previously archived ori^al text are recognized as non- program determines if a date phrase (phrase matching any of 

archived text, and further msertior^ and deleUons in such ^ate phrases listed in the first columns of the tables of 

insertion compartment text are made under column 366 in piGS. 9 and 10) is near the cursor. If true, then in step 412 

spite of the fact that the diary entry has been previously determined if this date phrase has been previously 

archived. detected such as by being highlighted. If not, then in step 

In text blocking 398 under the archived text column 368. 414 the newly detected date phrase is highlighted (see 

deletion of blocked text involves marking the text block in highlighted text 430 in RG. 8) and any previously high- 

a cross-out compartment. Copying of blocked archived text lighted date phrase is returned to lidrmal. Also in step 414, 

involves placing the text in an insertion compartment at the ^ the absolute date for the date phrase is computed using the 

new copy location. Moving of blocked archived text formula pointed to by the corresponding formula index 

mcludes both marking the blocked text in a cross-out number of FIG, 9 or 10 if there is no impUed date compart- 

compartment at the old location and marking the blocked ment |ID| . . . |ID| immediately following the phrase. The 

text in an insertion compartment in the new location. Where calculated absolute date or an already existing implied 

copying or moving involves archived text at one location ^5 absolute date is displayed at 418 in the user interface of HG. 

and non-archived text at the other location, such copying or and the user is given the opportunity in step 422 of 

moving would be include operation under archived column confirming, step 424, or declining the suggested or existing 

368 at the one locaUon and operation under non-archived implied date or of entering manually another absolute 

column 366 at the second location. implied date, step 426; as a program setup option the 

Blocking functions 398 under archived text column 30 absolute dale may or may not be confirmed by default if the 
include the option of marking the blocked text in a tear-out user continues to enter text or move the cursor. In either of 
compartment (see the tear-out marker |T73j in FIG, 8). Text steps 424 or 426, the corresponding implied absolute date is 
segments placed in a tear-out compartment are not available placed in an implied date compartment immediately after the 
for display or printing unless the user remembers the tear-out date phrase. An implied date indicator |ID| is not displayed 
password or has kept a copy of the tear-out password and in 35 after the relative date phrase unless the corresponding miss- 
starting the diary program elects not to enter any master or ing text indicator in column 304 of FIG. 7 is ON and the 
manufacturer password but correctly enters the tear-out implied date itself is not displayed unless the corresponding 
password at step 254 in FIG. 2. In this manner the tear-out text di^lay indicator in column 298 is ON. 
compartment resembles in result a diarist tearing out a page prom steps 424 and 426. from step 422 when decline is 
or a portion of a page of a diary; the tear-out and its relative 40 chosen, from step 412 if true or from step 410 if false, the 
quantity can be made visible but the contents of the tear-out program proceeds to step 436 where the words near the 
are normally not available. cursor are compared to the alias words in the tables of FIGS. 

Text blocking 398 is also used to mark a blocked text 12 and 13. If there is a match then in step 438 it is 

segment in one or more of the user defined compartments determined if the alias word has been previously detected 

listed below the default compartment of FIG. 7. Although 45 such as by being already highlighted. When step 438 is false, 

not illustrated in the drawings, the word processor includes the program in step 440 highlights the newly detected alias 

such standard options as blocking and marking text for word, removes the highlighting from the previous alias word 

underlining, italics, etc. A block of text is highlighted with if displayed, and displays the coaesponding list of specific 

the mouse or cursor and then a button is selected resulting alias identifier words from the table of FIG. 14 at 442 in FIG. 

in underline, italics, etc. codes being placed before and after 50 8 if the alias word does not have any alias compartment 

the block of text. The display or printing portion of the marker [Aj immediately following the ahas word; if the alias 

word-processing program detects these codes and displays word is followed by \A\ the contents of the alias comparl- 

the text as underiined, italics, etc. usually with the codes ment are displayed at 442. The diarist in step 444 is given the 

hidden. An option usually exists to either hide or reveal the opportunity to select one of the displayed specific identifier 

codes for the bold face, italic, etc. options. Also standard ss termsby simultaneously pressing ALT and the number of the 

delete options exist to delete normal printing and formatting identifier term (the identifier terms can be scrolled if they 

codes as well as compartment codes other than the tear-out can not all be displayed in the space 442) causing the 

compartment codes as desired. System compartment codes program in step 446 to insert the selection into an alias 

in non-archived text can also be deleted. compartment immediately following the alias word. When 

Text or data entry is always into one or more (if nested) 60 an alias compartment already exists at step 444, the diarist 

of the default and user defined compartments. For example can simultaneously press ALT and "I" to erase the existing 

in FIG. 8, the upper seven lines of displayed text are in a the existing identifier term and call the corresponding list for 

default compartment bracketed by |0| . . . |0|. The patent data display at 442 and selection. Simultaneously pressing ALT 

in line 8 is not in the default compartment but is within its and "A" at step 444 causes the program to branch to step 448 

own compartment jl| . . . Line 8 is in a defauU compart- 65 where the diarist can enter a new specific identifier term into 

ment. The compartment in which data or text is to be entered the corresponding list in the alias table and into an alias 

is selected by pointing and clicking on the compartment compartment immediately following the alias word. Press- 
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ing ALT and "D** simultaneously results in no alias identifier dat§. Then in step 536 a digital signature is computed on the 

term being selected. If the diarist continues to type or move t ime stamped stripped tex t"thc digital signature k a one-way 

the cursor, the program in accordance with a setup default encr yptionbf the text and time d ata into a fi xed length code 

option either inserts no alias compartment or selects the first tfiat is most highly unlikely ToBereproduced if changes were 

displayed specific identifier term in step 446, or makes no 5 made in the text or data. This digital signature is ap pended 

change if the ahas conapaitmenl akeady exists. When a new t o the time stamped stripped text to form the reference daU 

term is added m step 448 or a election other than the fet 226 of the conc^ndiilg diar^ entry. Next in step 538 the 

selection is selected in step 446, the program m step 450 ^^^i^^ g ^ the wor^ng data is set true foUo Jng which 

sorts the corresponding list in the abas table by placing the .u- \.a^^ a -iii j .1. a * ^ha c^u . 

A . • ♦u I - . J .u . the uidcxes 230 and 232 and the date 204 of the most recent 

current selection as the first item m the list, and the next . . j . j * . ™_ r , ^ 

. . . 10 archive are updated in step 540. The reference daU 226 and 

closest preceding different abas identifier term (found in the . * ^ ^ , ^y-io .1 * j • * e^i-* .1. 

^^™t.™^™ i.^A tk- ^ • r i TV *u* J workmg data 228 are then encrypted m step 542, the 

corresponding list) as the second term m the list. The third ^1 i - j * j • /ji j 

location in thfsorted list, ifdifferent from the first two, is the "^f^^n ? ^^."^ "^"^ ^•''^ theencrypted 

unique identifier most frequently found in the preceding two ^^7°"" ^"'^ ^^^'""S daU are ^[ored in step 544 . 

pages of diary entries. The order of any remaining terms , ^° ^^^P ^^0 of FIG. 18, it is found that the diary entry 

following the second term remains unchanged. previously been archived, i.e. the archive flag is true, 

THe archive/save functions 104 and U6, RG. 1. are tb^o the pro-am branches to step 550 of HG. 19 where the 

illustrated in the procedure of HGS. 18 and 19, Hie save T^l"^ f u ^^^P^"^ "^'^^ 

fu nction 116 allows the d iarisOo lemporarilv save a new Alternatively where th^^eference daU is only a digital 

diary entry that is incom^le^^^u^^ a "1^°^^^^' ^50. FIG. 19 computes the digital 

non:a?5Er?Sd"dii?^^ with signature on the slnpped workmg 

archived) the diary program stores a corresponding working ^^.'°*P ^^*^P 18) and compares the resulting 

data section 228 without forming and storing any reference ^^^^'^ ^'^f^"^ .^^^^^ ^^^^^^ reference data. Step 550 

data section 226, and the corresponding archive flag in the ^etectsmodificationof the origmal diary entry porUon of the 

working data will be false. When the diary entry has „ ^'"^ ^r'^l^'^ P^*^°^ P^^g*^^"^ 

previously been archived, the save and archive functions are ^""^^ ^ discrepancy is uncoverwl produces an error 

the same. In step 502 it is determined if the master password ""^^"S^ P'*'^*'"^ modihcd workmg data, 

flag is true; no save or archiving is permitted for a user with ^^""^ ^ ^ match in step 550, then the program proceeds 

limited access. The existence of suitable data is determined to step 552 where it is determined if there is suflScient disk 

in step 504; the saving or archiving of an empty diary entry 3Q storage space to save the file with the modified or new 

or one without any words or displayable data is generally working data. Step 552 is also the entry point for a branch 

prohibited. fro™ step 526 when the diarist has selected to save an new 

Next in step 506 the program determines if the data is to "^^^^ archiving. In the next step 554 the 

be stripped. Generally all diary entries are to be stripped; P^gram determines if the quantity of tear-out words for 

however if a diary entry consists entirely of graphical data 35 '^^^^ ^^^^^ ^ maximum limit. The diarist is inhibited from 

then stripping could distort the data to the extent that no ^^'^^ ^^^^ tear-outs of major portions of the stored 

useable data remains after stripping. The stripping procedure ^^^^ permitting the diarist to tear-out (place in the 

508 is iUustrated in FIG. 20 and includes step 510 where any '"^'^^^ compartment) only a relatively small portion of any 

text within insertion, insertion date, alias, and implied date '^"^^ quanUly of diary text; the dianst over a period of 

corapartmenls is deleted, step 512 where compartment and 40 ^""^'^^ "'^"^ ^^^^^ ^^^^^^^ most or aU of the text, 

formatting codes are deleted, and step 514 where consecu- the tear-out limit is not violated, then the program in 

live blank spaces are compressed to single blank spaces. step 556 updates the file tear-out quantity 206, in step 558 

This results in a canonical form of the text, A person skilled updates the indexes 230 and 232, in step 560 encrypts the 

in the arts of compression and encryption will appreciate working data, in step 561 updates the checksum 202, and in 

that many other canonical forms are possible. 45 step 562 stores the working data in read/write memory such 

Referring back to FIG. 18 in step 520, it is determined if ^s a magnetic disk, 

th ere is an archive flag for the present diary entry , i.e, if the The search and retrieve procedure 136 is shown in FIG. 

present diary entry has been previously archived. A diary 21 and includes step 570 where the user enters one or more 

entry can only be archived once, i.e. stored reference data search parameters such as date, date range, name, key text 

226 is WORM data and cannot be changed; changes can 50 words, compartment name, and the like. Next in steps 572 

only be made to the working data 228. When the diary entry and 574, the program inputs the indexes 230 and 232 and 

has not been previously archived, the program proceeds to looks for the search parameter or parameters. When a match 

steps 522 and 524 where the clock and check sum flags, is found the corresponding working data block or blocks are 

respectively, arc sensed to insure that the clo ckjs appear^ ^9 input in step 576. In step 578, the program determines if 

h ave the correct date a nd that the file has not previously been 55 there is only limited access, and if so, then deletes the 

corrupted. In step 526 the program determines if the diarist non-accessed compartments from the inputted data blocks in 

wishes to only save the diary entry without archiving, i.e. did step 580; otherwise, the corresponding reference data block 

the user select save 116, FIG. 1. If false, the program then or blocks are input in step 582. 

in step 530 determines if the present clock date is unlikely. The authenticate procedure is shown in detail in FIG. 22 

for example more than one week past the last archive date. 60 wherein the first step is to input the time-stamped data 

When true, the diarist must confirm in step 532 that the date (working data if reference data consists only of a signature) 

is correct to ensure that the computer clock is not been set and the signature (reference data). If the input data is 

or is not malfunctioning to give a date in the distant future working data text, then the program branches at 604 to the 

which would prevent storage of later diary entries with dates strip data procedure 508, FIG. 20, At step 608 the program 

prior to that future date. 65 branches to conventional public key procedure 610 if the 

In archiving the diary entry, the program at step 534 pubhc key procedure is used in authentication. Otherwise, 

appends the real clock time to the strippedjext and working the program proceeds to step 612 where the signature is 
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computed from the stripped text and appended time stamp. seal 734 to an I/O port 736 connected to the bus 712. The 

This computed signature is compared to the signature in the physical seal prevents access to the circuits and data in the 

archived reference data and if found identical at step 614 device 700 except through the port 732. The microprocessor 

returns a confirmation signal in step 616; otherwise a 708 and the I/O port 736 prevent seizure of control of the 

nonconfirmation signal is returned in step 618. 5 data and the device through the port 732 on bootup. Once the 

As illustrated in FIG. 23, the exit procedure 152, FIG. 1, device is booted the microprocessor treats all input as data 

begins with delecting the checksum flag in step 630 and the reissues only valid commands related to data aulhenti- 

master password flag in step 632. If cither are false (F) then cation. A major function of the physical and electrical 

the program returns to the operating system. If both the security is to ensxire that the keys and manufacturer's 

checksum and master flags are tnie, then the program at step password can be kept secret. 

634 gives the user the opportunity to call the archive In a diary embodiment employing the authentication/ 

function 104 so that any new diary entry that may have been encryption device 700, the device 700 is used to time-stamp 

produced can be archived. When the user declines to archive and authenticate data in place of using software algorithms 

a diary entry at step 634, the opportunity to call the save as was accomplished in the previously described software 

function 116 is presented in step 636. In any event the only embodiment at step 536 in FIG, 18 or step 612 in FIG. 

program returns to the operating system at the end of the exit 22. The data is passed to the device 700 through the 

procedure. communications port 732 from the CPU 704, The data is 

In another embodiment of the digital diary, special hard- stored in the RAM 722. The encryption device 724 is first 

ware shown in FIG. 24 is used. An authentication/encryption ^d to compute the hash of the data. (This hash could 

device 700 is connected to the CPU 702 operating diary ^° alternatively be computed in the CPU and it alone be 

object code 704, and may be used to improve the security of transmitted to the device 700 instead of transmitting the 

the time-stamping, authentication, and authentication veri- complete file and having the hash computed there.) Then the 

fication as well as for the encryption and decryption of current time from the clock 716 is appended to the hash, and 

stored data. The device 700 comprises a microprocessor 708 encryption device is used to compute a digital signature 

to control the overall system under the control of a program ^ of the hash and appended time using the authentication 

stored in the Read Only Memory (ROM) 710. Communi- private key 726. The hash, time, and digital signature are 

cation between the elements of the device is carried on via returned to the CPU 702. At this point the diary object code 

a bus 712. Also included in the device is a digital clock 716, flow resumes in FIGS, 18 or 22 as if steps 536 and 612 had 

powered by a trickle-charged battery 718 which can be proceeded strictly in the diary software object code, 

accessed from outside the device in order to ensure ^° A second use of the authentication/encryption device 700 

un-interrupted power to the clock 716. The clock 716 is set is to encrypt and decrypt all data as it is stored and recovered 

at the factory and is secured against being reset by anyone, from the archive file of FIG. 4. In function 112 of FIG. 1, the 

including the owner of the device. The microprocessor 708 CPU 702 passes the encrypted file, or a portion thereof, to 

periodically runs diagnostic checks on the clock 716, and the device 700 with the appropriate decryption instruction to 

shuts down all operations of the device should the diagnos- decrypt the data, and the decrypted data is returned to the 

tics fail. One of these diagnostics is to periodically store the CPU 702 by the device 700. In function 110 of FIG. 1. the 

time in a non-volatile portion 720 of a random access data to be stored is passed to the device 700 by the CPU 702 

memory (RAM), and to check that the current time is later with the appropriate encryption instruction and the 

than the stored time. Th& device also contains volatile RAM encrypted data is returned to the CPU 702 by the device 700, 

722 used by the microprocessor 708 and an encryption ^ Instead of encryption and decryption being performed using 

device 724 to hold data during execution of processes the diary object code as in the previous embodiment, it is 

directed by them, performed in the authentication/encryption device 700. 

The encryption device 724 is capable of computing digital When data is received by the device 700 to be encrypted 

signatures and of encrypting and decrypting data. It contains it is passed first by the I/O port 736 to RAM 722 where it is 

within it in a secure and tamperproof manner the RSA encrypted by the encryption device 724 using the secret DES 

authentication private key 726 andl/or the DES encryption encryption key 728 and then the encrypted data is passed 

key 728 which have been discussed previously. The manu- back to the CPU 702 by the input/output 736. Decryption is 

facturer's password 730, which has also been discussed performed in a similar manner. 

previously is stored in the embodiment of FIG. 24 in the jhe third and final function of the authentication/ 

non-volatile RAM 720 and thus is not encrypted and stored encryption device 700 is to perform authentication on data 

m the object code of the diary program as m the previous submitted to it. In this case the public key authentication step 

embodLraem m FIG. 3 at 168, Thus the diary program object 610 of FIG. 22 which has been discussed above is performed 

code 704 does not contain any portion of object code to within the device 700 instead of within the diary software, 

decrypt and replace those data in the object code (see 166 in jhe authentication is performed using the pubUc key of the 

private key-public key pair. The signature, decrypted using 

The option of invalidating the manufacturer's password in the public key, is returned to the CPU 702 where it may be 

this embodiment is allowed to be a valid command to the compared to the stored time-stamped hash. The public key 

encryption/decryption device 700 so long as the master is stored within the encryption device 724 for convenience 

password has been input to the device. The same procedure even though it is not secret and could be input with the data 

may be followed as in the software embodiment except that itself, 

in this case the replacement of the original manufacturer's At this point we remark that there are methods of authen- 

password takes place in the encryption device; the manu- ticauon which have only a single secret key, so called secret 

facturer's pa^word and its replacement are placed in non- key methods. In this case the time-stamped text with the 

volatile RAM 720 m the encryption device. ^5 ^^^^^^ signature for which verification of the authentication 

The device 700 accepts data from the CPU 702 via a is desired is input to the secret-key encryption/authentication 

communications port 732 which passes through a physical device 700 and a new digital signature is computed on the 
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lime stamped text without the current date being appended. and controller 752, connected through a second I/O port 754 
Then the new digital signature is compared internally to the to an I/O device 756. In the device 750 the seal 734 encloses 
original digital signature and if they are the same a confir- a!so the disk-drive and controUer 752 to prevent physical 
mauon signal is emitted to the CPU. In this approach the access to the archival files of FIG. 4. As in the 
newly computed signature cannot be returned to the CPU to 5 autbenUcation/encryption device 700 of FIG. 25. the micro- 
check authenticalion by comparison with the existing sig. p^cessor 708 also examines all commands from the CPU 
nature smce if this were done the iiser of the device oou Id ^ ^^^^ ^ ^^^^ to a list of valid 

falsify an authentication by submittmg data with a realisUc ^«m„,,„^e ct««.H ;« oniu Tin a 1 • iT * - 

but falsified time-stamp and thus obtain the digital signature I'^^ut^^^ ^r^'^A-^^' 1^ ' 

appropriate to any date without knowing the iecret key. So "^^t^^^ff III ^ ^^'f '^^^'^fl 

in this case the device 700 foUows the Lret or non-pubUc ^Ir.^nt ^^ f^^ ^' TT^^ ^^^^'1"^ 

key path procedure ouUined in HO. 22. TTie deviJe 700 ""I'^^The ^ ^p°m V\ 

internally computes the digital signature (612 of FIG. 22) of "^^"^^ should the disk be a WORM optical disk instead of 

tk*. t™*. et.«,™^ K^ok #k» • ♦ II / * * magnetic disk, as in this embodiment, it would be unnec- 

Ihe time-stamped hash and then internally compares (step .u- • v um«,v 

£i>t«fi:f/^ w *u» • . • *. iflu J 1 essary to include this restnction.) 

614 of FIG. 22) to the input signature. If they are identical „ - 

the device 700 returns a confirmation signal to the CPU 702. ^° X\xtihtt enhance the security of the embodiment using 

If they are not identical a non-confirmation signal is returned archival memory system in FIG. 25, the software 

but not the calculated signature itself. This same procedure examines retrieved text to ensure that only data 

would be followed if a secret key authentication method P^P^"" passwords arc available to user (discussed 

were used in the software only embodiment. ^^^^ ^ connection with retrieval step 580 in FIG. 21) is 

In a variation of the secret or non-public authentication '° [fP^'^j^ "^^^ ^10 and used to 

approach a second nearly identical encryption/ delete data returned from the disk which is in compartments 

authentication device (not shown) with the same secret key 1°' "^^^^ passwords have not been received from the CPU 

but without the capabUily to output a signature could per- ^^^^ protected 

form the same verification of authentication without the ^'^^'T,^ '"^^^ consisting of the disk 

verifier being able to falsify the document after he has ^""^^ controller 752 together with the authenticaUon/ 

received it. Note that the second device need not have a V^^^^on device 750 withm the physical seal 734, unless 

real-lime clock 716. nor its battery 718. nor need it have an appropnate passwords have been input. The code dis- 

encryption capability except as required to compute the cussed m reference to step 580 m FIG. 21 is thus transferred 

digital signature. We may term these second devices secret 30 ^^^^^ ^^'7 o^je^^t of ^ to the ROM 710 in the 

verification devices. Obviously these devices wUl be sub- embodunent in which the secure archival memory device is 

stantially cheaper and more robust than the complete use . 

encryption/authentication devices. Distribution of as many ^so, since the device 750 protects the data from those 

copies as desired of these secret verification boxes to all ^^o do not have knowledge of the passwords, and also 

those who need to verify authentication of messages authen- 35 protects the reference data from alteration even by the 

ticated by the first secret encryption/authentication device diarist, it is no longer necessary to encrypt the data or the 

would provide many of the benefits of a public key authen- "^^ex before it is archived; and correspondingly no longer 

tication system. Of course the security of siich a system rests necessary to decrypt it upon retrieval. So these functions of 

on the ability of the physical seal 735 and the electronic seals software and hardware which have previously been 

or safeguards to protect the private key 726 which, in the ^ discussed can be removed from the diary software and 

case of the use of a secret key would likely not be an RSA hardware. 

key. Such a second private verification device could also be The above described software and/or hardware forming a 

routinely given to a third party to be used in case there were personal computer diary is designed to be incorporated in 

questions about the authenticity of some diary reference data any conventional computer including conventional personal 

which had been output. So long as the seals could be seen 45 desktop, laptop and notebook computers. Additionally the 

to be untampered with it would not be necessary to trust the disclosed personal computer diary can be incorporated in a 

third party. special purpose personal computer similar to a conventional 

The use of the hardware authentication/encryption device notebook computer, but limited to use as a personal diary 

700, FIG. 24. ensures that the time of a diary entry cannot with seals enclosing the clock, disk or other permanent 

be falsified either by resetting the system clock in the CPU 50 storage, encryption circuitry, and input/output circuitry. The 

702, nor by using advanced computer engineering methods special purpose diary computer can be provided with built-in 

to determine the secret keys and password 168. FIG. 3, in the public/private key time stamping and/or encryption facili- 
objecl code and using them to access and/or change the 

passwords and data in the archive files. Since many modifications, variations and changes in 

There still remains the possibility that the complete 55 detail can be made to the above described embodiments 

archive files can be erased by use of another program. without departing from the scope and spirit of the invention, 

Someone with access to the encryption key, or to the it is intended that the above description and the accompa- 

encryption device 700, but not the passwords could read the nying drawings be interpreted as only illustrative and not in 

data even if they could not falsify it. These possibilities can a limiting sense, 

be prevented by means of the secure archival data storage eo What is claimed is: 

device 750 in FIG. 25. This device 750 is in many ways 1- A method for controlling operation of a user of a user 

identical to the device 700 in FIG. 24. The time-stamping device, comprising the steps of: 

and authentication capabilities discussed in connection with (a) issuing an authenticated time signal request from the 

FIG. 24 are also available and implemented in a similar way user device to an authenticated time source device; 

in the secure archival data storage device. ^5 (5) generating an authenticated time signal within the 

However, the device 750 differs in that it includes an authenticated time source device in response to the 

archival storage medium, such as a high capacity disk drive request; 
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(c) receiving the authenticated time signal at the user 13. A method for conlroUiDg operation of a user device as 
device; recited in claim 12 wherein the cryptographic key includes 

(d) determining, within the user device, the validity of the using a key belonging to a symmetric cryptographic proto- 
authenticated time signal; co^- 

(e) controlling operation of the user device based on 5 14. A method for controlling operation of a user device, 
receipt of the authenticated time signal comprising the steps of: issuing an authenticated time signal 

2. A method for controlling operation of a user device as request to an authenticated time-sourc» device; receiving an 
recited in claim 1 wherein the step of issuing the aulhenti- authenUcated time signal frorn the authenUcaM toe sou^ 

cated time signal request further comprisJ the steps of ^f^'^} ^"hTJ^m? """^r ? authenticated Ume 

jj w Signal; and controUmg operation of the user device based on 

generaung a random or pseudorandom number withm the lO aulhendcated time signal, 

user device; and transmitUng the random or pseudorandom ^5 ^ ^^^^ controlling operation of a user device as 

number from the user device to the authenticated Ume recited in claim 14 wherein the step of issuing the authen- 

source device. ticated time signal request comprises the steps of: generating 

3. A method for controlling operation of a user device as ^ random or pseudorandom number within the user device; 
recited iii claim 1 wherein the step of generating the authen- is and transmitting the random or pseudorandom number from 
ticated lime signal comprises the steps of: determining a (he user device to the authenticated time source device, 
current lime; performing a cryptographic operation on at 16. A method for controlling operation of a user device as 
least the current lime to form an authentication code; and recited in claim 14 wherein the step of determining the 
combining at least the current time and the authentication validity of the authenticated time signal comprises the steps 
code to produce the authenticated time signal. 20 of: determining a previous time at which the user device was 

4. A method for controlling operation of a user device as most recently stopped or started; determining a returned 
recited in claim 3 wherein the step of performing the time from the authenticated time signal; and verifying that 
cryptographic operation further comprises hashing. the returned time is later than the previous time. 

5. A method for controlling operation of a user device as 17. A method for controlling operation of a user device as 
recited in claim 3 wherein the step of performing the 25 recited in claim 14 wherein the step of determining validity 
cryptographic operation comprises using a symmetric or of the authenticated time signal further comprises the steps 
asymmetric cryptographic key protocol. of: determining, from the authenticated time signal, at least 

6. A method for controlling operation of a user device as a returned time and a returned authentication code; perform- 
recited in claim 1 wherein the step of determining the ing a cryptographic operation on at least the returned time to 
validity of the authenticated time signal frirther comprises 30 form a recomputed authentication code; and comparing the 
the steps of determining a previous time at which the user recomputed authentication code and the returned authenti- 
dcvice was most recently stopped or started; determining a cation code. 

returned time from the authenticated time signal; and veri- 18. A method for controlling operation of a user device as 

fying that the returned lime is later than the previous time. recited in claim 17 wherein the step of performing the 

7. A method for controlling operation of a user device as 35 cryptographic operation comprises hashing. 

recited in claim 1 wherein the step of determining the 19. A method for controlling operation of a user device as 

validity of the authenticated time signal comprises the steps recited in claim 14 wherein the step of determining the 

of: determining, from the authenticated lime signal, at least validity of the authenticated time signal further comprises 

a returned time and a returned authentication code; perform- the steps of: detemiining a random or pseudorandom num- 

ing a cryptographic operation on at least the returned time to 40 ber that was most recently transmitted to the authenticated 

form a recomputed authentication code; and comparing the lime source; determining a returned random or pseudoran- 

recomputed authentication code and the returned authenti- dom number from the authenticated time signal; and com- 

cation code. paring the returned and most recently transmitted random or 

8. A method for controlling operation of a user device as pseudo random numbers. 

recited in claim 7 wherein said performing the cryptographic 45 20. A method for controlling operation of a user device as 

operation comprises hashing. recited in claim 14 wherein the step of controlling operation 

9. A method for controlling operation of a user device as of the user device comprises setting a clodc within the user 
recited in claim 1 wherein the step of determining validity of device upon receipt of the valid authenticated time signal, 
the authenticated time signal further comprises the steps of: 21. A method for controlling operation of a user device as 
determining a random or pseudorandom number that was so recited in claim 14 wherein the step of controlling operation 
most recently transmitted to the authenticated time source; of the device comprises preventing continued operation of 
determining a returned random or pseudorandom number the user device in the absence of a valid authenticated time 
from the authenticated lime signal; and comparing the signal. 

returned and most recent random or pseudorandom num- 22. A method for controlling operation of a user device as 

bers. 55 recited in claim 17 wherein said performing the crypto- 

10. A method for controlling operation of a user device as graphic operation includes using a cryptographic key. 
recited in claim 1 wherein the step of controlling operation 23. A method for controlling operation of a user device as 
of the user device comprises setting a clock within the user recited in claim 22 wherein the cryptographic key is a key 
device upon receipt of a valid authenticated lime signal. belonging to a symmetric cryptographic protocol 

11. A method for controlling operation of a user device as 60 24. A method for controlling operation of a user device as 
recited in claim 1 wherein the step of controlling operation recited in claim 14 wherein the step of determining the 
of the user device further comprises preventing continued validity of the authenticated time signal further comprises 
operation of the user device in the absence of the valid the step of performing a cryptographic operation on the 
authenticated time signal authenticated time signal to give at least a returned time. 

12. A method for controlling operation of a user device as 65 25. A method for controlling operation of a user device as 
recited in claim 7 wherein said performing the cryptographic recited in claim 24 wherein the step of performing a cryp- 
operation includes using a cryptographic key. tographic operation includes using a cryptographic key. 
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26. A method for controlling operation of a user device as 39 . An apparatus for controlling operation of a user device 
recited in claim 25 wherein the cryptographic key is a key as recited in claim 31 wherein said controller includes a 
used in a symmetric cryptographic protocol, comparator for comparing a first random or pseudorandom 

27. A method for controlling operation of a user device as nimiber that was most recently transmitted to the autbenti- 
recited in claim 25 wherein the cryptographic key comprises 5 cated lime source device against a second random or pseu- 
a key used in an asymmetric cryptographic protocol. dorandom number remmed from the authenticated time 

28. A method for controlling operation of a user device as signal. 

recited in claim 14 wherein the step of determining the 40. An apparatus for controlling operation of a user device 

validity of the authenticated time signal further comprises as recited in claim 31 wherein said controller comprises 

the steps of: means forgetting a clock within the tiser device upon receipt 

determining a random or pseudorandom nimiber that was of a valid authenticated lime signal. 

most recently transmitted to the authenticated time 41. An apparatus forcontrolling operation of a user device 

source; as recited in claim 31 wherein the controller for modifying 

determining a returned random or pseudorandom number operation of the user device comprises means for preventing 

from the authenticated time signal; and continued operation of the user device in the absence of the 

comparing the returned and most recently transmitted "^^l^ authenticated lime signal. 

random or pseudorandom numbers. ^2. An apparatus for controlling operation of a user device 

29. A method for controUing operation of a user device as ^ rtdiGd in claim 31 wherein the tamper resisUnce system 
recited in claim 14 wherein the step of controlling operation comprises a seal enclosing a clock, a cryptographic engine, 
of the user device comprises setting a clock within the user mpul/output port, a digital bus, and the controller, 
device after receipt of the valid authenticated time signal. 20 43. An apparatus as recited in claim 42 wherein said seal 

30. A method for controUing operation of a user device as comprises an encapsulation. 

recited in claim 14 wherein the step of controlling operation 44. An apparatus for controlling operation of a user device 

of the user device comprises preventing continued as recited in claim 31 wherein the tamper resistance system 

operation, of the user device unless the valid authenticated comprises means for allowing only predetermined electronic 

time signal is received. 25 signals to access the user device. 

31. An apparatus for controlling operation of a user 45. An apparatus for controlling operation of a user device 
device, comprising: an input/output port for issuing an as recited in claim 31 wherein the tamper resistance system 
authenticated time signal request to an. authenticated time comprises means for automatically disabling the user device 
source and receiving an authenticated time signal from the upon detection of unauthorized access. 

authenticated time source; a memory; a controller for deter- 30 46. An apparams for controlling operation of a user device 

mining the validity of the authenticated time signal and for ^s recited in claim 31 wherein said controller further com- 

modifying operation of the user device in accordance with ^ cryptographic engine for performing a crypto- 

the validity determination; and a tamper resistance system graphic operation on the authenticated lime signal to give at 

for impeding unauthorized access to the user device. j^j^^j ^ returned time 

32. An apparatus for controUing operation of a user device 35 47 ^ apparatus for controlling operation of a user device 
as recited in claim 31 additionaUy comprising a number 33 .^cited in claim 46 wherein the cryptographic engine 
generator for generating a random or pseudorandom number includes a cryptographic key. 

as part of the authenticated time signal request. 4^ apparatus for controUing operation of a user device 

33. An apparatus for controUing operation of a user device recited in claim 47 wherein the cryptographic key is a key 
as recited in claim 31 wherein said controller comprises: ^ ^ symmetric cryptographic protocol. 

a comparator for verifying that a returned time, deter- 49. An apparatus for controUing operation of a user device 

mined from the authenticated time signal, is later than 35 recited in claim 47 wherein the cryptographic key is a key 

a previous time at which the user device was most used in an asymmetric cryptographic protocol, 

recently stopped or started. 50. An apparaUis for controUing operation of a user device 

34. An apparatus for controUing operation of a user device 45 as recited in claim 31 wherein said controUer includes a 
as recited in claim 31 wherein said controller further com- comparator for comparing a first random or pseudorandom 
pnses: number that was most recently transmitted to the authenli- 

a cryptographic engine for determining a returned time cated time source device against a second random or pseu- 

and a returned auUientication code from the authenti- dorandom number returned from the authenticated time 

cated time signal, and for performing a cryptographic 50 signal. 

operation on at least the relumed time to form a 51, An apparatus for controlling operation of a user device 

recomputed authentication code; and as recited in claim 31 wherein the controUer for modifying 

a comparator for comparing the recomputed authenlica- operation of the user device comprises means for setting a 

tion code and the returned authentication code. clock within the user device upon receipt of the valid 

35. An apparatus for controUing operation of a user device 5S authenticated time signal. 

as recited in claim 34 wherein the computer engine includes 52. An apparatus for controlling operation of a user device 

means for computing a hash. as recited in claim 31 wherein the controUer for modifying 

36. An apparatus for controUing operation of a user device operation of the user device comprises means for preventing 
as recited in claim 34 wherein the means for cryptographic continued operation of the user device in the absence of the 
engine includes at least a cryptographic key. 60 valid authenticated lime signal. 

37. An apparatus for controUing operation of a user device 53. An apparams for controlling operation of a user device 
as recited in claim 36 wherein the cryptographic key com- as recited in claim 31 wherein the tamper resistance system 
prises a key used in a symmetric cryptographic protocol. comprises a seal for enclosing: a clock, a cryptographic 

38. An apparatus for controlling operation of a user device engine, an input/output port, a digital bus, and the controUer. 
as recited in claim 36 wherein the cryptographic key com- 65 54. An apparatus for controUing operation of a user device 
prises a pubUc key used in an asymmetric ayptographic as recited in claim 53 wherein said seal comprises an 
protocol. encap-sulalion. 



17/^0/700^ FA<;t VPrc;Tnn- 14 1 



us 6,442,691 Bl 



23 



24 



55. An apparatus for controlling operation of a user device 
as recited in claim 31 wherein the tamper resistance system 
comprises means for allowing only predetermined electronic 
signals to access the user device. 

56. An apparatus for controlling operation of a user device 
as recited in claim 31 wherein the tamper resistance system 
comprises means for automatically disabling the user device 
upon detection of unauthorized access. 

57. A device for authenticating and time-stamping input 
data, comprising: 

a clock; 

an encryption circuit including a secret key; 

an input/output circuit including a port for receiving and 
transmitting digital signals; 

a digital bus coupled to the input/output circuit, the 
encryption circuit, and the clock; 

a controller coupled to the bus for controlling operation of 
said input/output circuit, said clock and said encryption 
circuit to receive input data and requests for authenti- 
cating and time-stamping the input data applied to the 
port, to read time data from the clock, to combine and 
input data with said time data, to operate the encryption 
circuit to generate an encrypted lime stamp authenti- 
cation code firom the combined input data and time 
data, and to transmit from the port the time data and the 
encrypted time stamp authentication code; and 

an access detector, said access detector indicating 
attempted access to at least one of said clock, said 
encryption circuit, said digital bus, said controller, and 
said input/output circuit except via the port. 

58. A device for authenticating and time -stamping input 
data, comprising: 

a clock; 

an encryption circuit including a secret key; 

an input/output circuit including a port for receiving and 
transmitting digital signals; 

a digital bus coupled to the input/output circuit, the 
encryption circuit, and the clock; 

a controller coupled to the bus for controlling operation of 
said input/output circuit, said clock and said encryption 
circuit to receive input data and requests for authenti- 
cating and time-stamping the input data applied to the 
port, to read time data from the clock, to combine and 
input data with said time data, to operate the encryption 
circuit to generate an encrypted lime stamp authenti- 
cation code from the combined input data and lime 
data, and to transmit from the port the time data and the 
encrypted time stamp authentication code; and 

an access inhibitor, said access inhibitor impeding access 
to said clock, said encryption circuit, said digital bus, 
said controller, and said input/output circuit except via 
the port. 
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59. A device for authenticating and time-stamping input 
data, comprising: 

a clock; 

an encryption circuit including a secret key; 

an input/output circuit including a port for receiving and 
transmitting digital signals; 

a digital bus coupled to the input/output circuit, the 
encryption circuit, and the clock; 

a controller coupled to the bus for controlling operation of 
said input/output circuit, said clock and said encryption 
circuit to receive input data and requests for authenti- 
cating and time-stamping the input data applied to the 
port, to read time data &om the clock, to combine and 
input data with said time data, to operate the encryption 
circuit to generate an encrypted time stamp authenti- 
cation code from the combined input data and time 
data, and to transmit firom the port the time data and the 
encrypted time stamp authentication code; and 

a tamper resistance system, said tamper resistance system 
inhibiting tmdetected access to said clock, said encryp- 
tion circuit, said digital bus, said controller, and said 
input/output circuit except via the port. 

60. The device of claim 59 wherein said tamper resistance 
system comprises a seal enclosing said clock, said encryp- 
tion circuit, said input/output circuit, said digital bus, and 
said controller. 

61. The device of claim 59, wherein said tamper resis- 
tance system detects attempted access to at least one of said 
clodc, said encryption circuit, said input/output circuit, said 
digital bus, and said controller. 

62. The device of claim 59, wherein said tamper resis- 
tance system impedes access to at least one of said clock; 
said encryption circuit, said input/output circuit, said digital 
bus, and said controller. 

63. The device of claim 59, wherein said tamper resis- 
tance system both detects attempted access to at least one of 
said clock, said encryption circuit, said input/output circuit, 
said digital bus, and said controller; and impedes access to 
at least one of said clock, said encryption circuit, said digital 
bus, said controller, and said input/output circuit except via 
the port. 

64. The device of claim 59, wherein said tamper resis- 
tance system prevents undetected access to at least one of 
said clock, said encryption circuit, said input/output circuit, 
said digital bus, and said controller. 
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